kotovalexarian-likes-gitlab/gitlab-org--gitlab-foss
1
0
Fork 0
Code Releases Activity
13845 commits 1 branch 0 tags 899 MiB
Commit graph

24 commits

Author SHA1 Message Date
Marin Jankovski
70f30abd84 Merge pull request #8273 from bbodenmiller/nginx-updates 
Nginx updates
 2014-11-10 10:20:44 +01:00
Ben Bodenmiller
271a352079 minor updates & formatting changes 
minor updates @ formatting changes to match other versions of file.
Unify formatting of
https://github.com/gitlabhq/gitlabhq/blob/master/lib/support/nginx/gitlab,
https://github.com/gitlabhq/gitlabhq/blob/master/lib/support/nginx/gitlab-ssl,
&
https://gitlab.com/gitlab-org/omnibus-gitlab/blob/master/files/gitlab-cookbooks/gitlab/templates/default/nginx-gitlab-http.conf.erb
 2014-11-08 23:33:27 -08:00
Hugo Osvaldo Barrera
e3098b69e7 Don't enable IPv4 *only* on nginx. 
The current configuration sample files only enable IPv4 by default, making the
server inaccesible for many remote hosts (and an increasing amount every day).

Enable IPv4 and IPv6 by default. Older servers with no external IPv6
connectivity will not fail since they'll have a local-link IPv6 address to bind
to anyway.
 2014-11-03 11:25:31 -03:00
Dmitriy Zaporozhets
80e944ac71 Merge pull request #8054 from bbodenmiller/patch-4 
match latest config from https://cipherli.st/
 2014-10-22 16:52:42 +03:00
Ben Bodenmiller
077fc683fa simplify DHE parameter generation 2014-10-16 14:34:03 -07:00
Ben Bodenmiller
5d7e1b6ae2 match latest config from https://cipherli.st/ 2014-10-15 23:51:53 -07:00
Marin Jankovski
be14c7a83f Add a comment on why we are using backward compatible ciphers. 2014-10-10 09:44:08 +02:00
Marin Jankovski
8ddb2be69a Revert "update ssl_ciphers" 
This reverts commit c41e5f5018.
 2014-10-10 09:38:39 +02:00
Sytse Sijbrandij
0cc30145f4 Merge pull request #7664 from bbodenmiller/patch-2 
add HSTS Policy warning
 2014-10-03 12:12:23 +02:00
Ben Bodenmiller
25ee53c3ae fail_timeout=0 as recommended by Unicorn 
Set's fail_timeout=0 as recommended by
http://unicorn.bogomips.org/Unicorn/Configurator.html#method-i-timeout
when Unicorn is running behind nginx.
 2014-09-12 02:19:38 -07:00
Sytse Sijbrandij
69c4026ec1 Merge pull request #7654 from bbodenmiller/patch-13 
update ssl_ciphers
 2014-09-08 15:07:59 +02:00
Sytse Sijbrandij
bef923055b Merge pull request #7583 from bbodenmiller/https 
[Documentation] simplify HTTPS setup details
 2014-09-08 11:05:19 +02:00
Ben Bodenmiller
a2b36858f5 add optional nginx configs to make more secure 2014-09-07 23:17:37 -07:00
Ben Bodenmiller
5d5d4ef91a simplify HTTPS setup details 
also adds comment about updating nginx files during upgrades
 2014-09-07 15:31:13 -07:00
Ben Bodenmiller
c41e5f5018 update ssl_ciphers 
taken from
https://raymii.org/s/tutorials/Strong_SSL_Security_On_nginx.html /
https://cipherli.st/

backwards compatible ciphers not needed since gitlab does not support
ie8
 2014-09-07 14:55:11 -07:00
Ben Bodenmiller
765eabeacc add HSTS Policy warning 
Add warning about HSTS header as it means user will need to provide secure connection access to site for next 24 months from page view. See https://en.wikipedia.org/wiki/HTTP_Strict_Transport_Security for more details.
 2014-09-01 15:47:15 -07:00
Dmitriy Zaporozhets
3069826d1a Merge pull request #7378 from jojosch/nginx-ssl-redirect 
Use a ? after the $request_uri to perform a valid Redirect while cloning...
 2014-08-28 16:54:36 +03:00
Dmitriy Zaporozhets
eddfdc9edd Merge pull request #7558 from bbodenmiller/patch-4 
change X-Frame-Options to SAMEORIGIN for nginx SSL config
 2014-08-23 23:50:09 +03:00
Ben Bodenmiller
3663354cb9 unify nginx config files 2014-08-23 01:08:12 -07:00
Ben Bodenmiller
a3953a46f4 change X-Frame-Options to SAMEORIGIN 
needed to allow sidekiq to load on background jobs tab
 2014-08-23 01:05:31 -07:00
johannes
b5481afd73 Use a ? after the $request_uri to perform a valid Redirect while cloning. 
fixes #6203

before:

❯ curl -I http://gitlab/namespace/repo.git/info/refs?service=git-upload-pack
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 26 Jul 2014 18:20:27 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: https://gitlab/namespace/repo.git/info/refs?service=git-upload-pack?service=git-upload-pack

after:

❯ curl -I http://gitlab/namespace/repo.git/info/refs\?service=git-upload-pack
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 26 Jul 2014 18:23:54 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: https://gitlab/namespace/repo.git/info/refs?service=git-upload-pack

[ci skip]
 2014-08-23 08:36:25 +02:00
Sytse Sijbrandij
06fade7545 Simplify the description of single hash lines based on comments of Ben Bodenmiller. 2014-08-22 19:10:07 +02:00
Sytse Sijbrandij
8aff39a6d0 Simplify the ssl setup file. 2014-08-04 15:57:59 +02:00
Achilleas Pipinellis
7be6b8ca73 Move gitlab-ssl nginx config from gitlab-recipes 2014-06-05 16:54:50 +03:00